Data Breach Today
FEBRUARY 14, 2023
The Tonto Team Used Spear-Phishing Emails to Target Group-IB Employees Group-IB says a July 2022 spear-phishing attempt on its own employees came from the Chinese threat actor known variously as Tonto Team and CactusPete. Tonto Team may be a unit of China's People's Liberation Army. Malwarebytes says the group has ramped up spying against Russian government agencies.
The Last Watchdog
FEBRUARY 14, 2023
The United States will soon get some long-awaited cybersecurity updates. Related: Spies use Tik Tok, balloons That’s because the Biden administration will issue the National Cyber Strategy within days. Despite lacking an official published document, some industry professionals have already seen a draft copy of the strategic plan and weighed in with their thoughts.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Data Breach Today
FEBRUARY 14, 2023
Group Targeted American Victims and Pocketed Over 5 Million Euros Police busted nine members of a cyber fraud gang that targeted mainly Americans. Spanish police arrested eight members, and U.S. authorities arrested one. In less than a year, the ring pocketed 5 million euros in scammed funds, say the Spanish National Police.
KnowBe4
FEBRUARY 14, 2023
Attackers are abusing a legitimate service called “GeoTargetly” to launch localized phishing attacks, according to Jeremy Fuchs at Avanan. GeoTargetly is meant to be used by advertisers to display ads in countries’ local languages. Avanan observed a phishing campaign that’s using phishing emails to target multiple countries in South America.
Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage
Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.
Data Breach Today
FEBRUARY 14, 2023
Community Health Systems Reports Data Breach in SEC Filing Community Health Systems has reported to the U.S. Securities and Exchange Commission that a security incident involving vendor Fortra's GoAnyWhere secure file transfer software has compromised the data of about 1 million patients. Did attackers exploit a recent zero-day vulnerability?
Information Management Today brings together the best content for information management professionals from the widest variety of industry thought leaders.
Data Breach Today
FEBRUARY 14, 2023
First Applicants Approved for Participation in HHS' National TEFCA Network Federal regulators said true health data interoperability is on its way for hundreds of millions of American patients now that six tech providers have committed to a rigorous set of trust and security criteria for swapping patient information. The agreement is a milestone years in the making.
Dark Reading
FEBRUARY 14, 2023
How newly exposed security weaknesses in industrial wireless, cloud-based interfaces, and nested PLCs serve as a wake-up call for hardening the physical process control layer of the OT network.
Data Breach Today
FEBRUARY 14, 2023
'Sinbad' Is Likely Run by Operators of Blender and Links to the Same Digital Wallet A cryptocurrency service that North Korean hackers used to launder stolen funds and that was sanctioned by the U.S. Department of the Treasury appears to have resumed as "Sinbad." It has laundered almost $100 million in bitcoin from hacks by Lazarus Group, says blockchain analysis firm Elliptic.
Dark Reading
FEBRUARY 14, 2023
78 new CVEs patched in this month's batch — nearly half of which are remotely executable and three of which attackers already are exploiting.
Advertisement
Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.
Record Nations
FEBRUARY 14, 2023
The COVID-19 pandemic launched one of the largest experiments the workplace has ever seen. Businesses sent millions of people home. Companies scrambled to provide their workers with the resources they needed to work anywhere. Records and data, previously contained in-office, were spread across the globe. Now, as those offices fill with people and records again, […] The post The Importance of a Return to Office Records Compliance Plan appeared first on Record Nations.
Information Governance Perspectives
FEBRUARY 14, 2023
Rudyard Kipling was revered as a literary giant in his lifetime. His talents were even compared to those of Shakespeare by renowned philosophers such as William James. But for a few decades now, the author's Marxist critics, especially those loyal to the poetics of new historicism, have treated the writer and his exotic stories with utter contempt and disdain.
eSecurity Planet
FEBRUARY 14, 2023
In 2013, Adam Markowitz founded Portfolium, an edtech startup that matched college students and graduates with employers. “I remember the first time we were asked for a SOC 2 report, which quickly became the minimum bar requirement in our industry for proof of an effective security program,” he said. The process for creating the report was time-consuming, manual and costly.
Information Governance Perspectives
FEBRUARY 14, 2023
Rudyard Kipling was revered as a literary giant in his lifetime. His talents were even compared to those of Shakespeare by renowned philosophers such as William James. But for a few decades now, the author's Marxist critics, especially those loyal to the poetics of new historicism, have treated the writer and his exotic stories with utter contempt and disdain.
Advertisement
Apache Cassandra is an open-source distributed database that boasts an architecture that delivers high scalability, near 100% availability, and powerful read-and-write performance required for many data-heavy use cases. However, many developers and administrators who are new to this NoSQL database often encounter several challenges that can impact its performance.
Schneier on Security
FEBRUARY 14, 2023
What will it take for policy makers to take cybersecurity seriously? Not minimal-change seriously. Not here-and-there seriously. But really seriously. What will it take for policy makers to take cybersecurity seriously enough to enact substantive legislative changes that would address the problems? It’s not enough for the average person to be afraid of cyberattacks.
Dark Reading
FEBRUARY 14, 2023
Researchers flag common misconfiguration errors and a template injection technique that could let an attacker take over the IT management network and connected systems.
Security Affairs
FEBRUARY 14, 2023
Cloudflare mitigated a record distributed denial-of-service (DDoS) that reached 71 Million requests per second. Cloudflare announced it has mitigated a record hyper-volumetric distributed denial-of-service (DDoS) attack that peaked at over 71 million requests per second (RPS). The company pointed out that this is the largest reported HTTP distributed denial-of-service attack on record, the volume was more than 35% higher than the previously reported record of 46M rps that was mitigated in June 2
KnowBe4
FEBRUARY 14, 2023
CyberheistNews Vol 13 #07 | February 14th, 2023 [Scam of the Week] The Turkey-Syria Earthquake Just when you think they cannot sink any lower, criminal internet scum is now exploiting the recent earthquake in Turkey and Syria. Less than 24 hours after two massive earthquakes claimed the lives of tens of thousands of people, cybercrooks are already piggybacking on the horrible humanitarian crisis.
Advertisement
“Reimagined: Building Products with Generative AI” is an extensive guide for integrating generative AI into product strategy and careers featuring over 150 real-world examples, 30 case studies, and 20+ frameworks, and endorsed by over 20 leading AI and product executives, inventors, entrepreneurs, and researchers.
Security Affairs
FEBRUARY 14, 2023
Microsoft Patch Tuesday security updates for February 2023 addressed 75 flaws, including three actively exploited zero-day bugs. Microsoft Patch Tuesday security updates for February 2023 fixed 75 vulnerabilities in multiple products, including Microsoft Windows and Windows Components; Office and Office Components; Exchange Server; NET Core and Visual Studio Code; 3D Builder and Print 3D; Microsoft Azure and Dynamics 365; Defender for IoT and the Malware Protection Engine; and Microsoft Edge (Ch
Dark Reading
FEBRUARY 14, 2023
Industry standards must evolve as digital transformation makes all companies software companies. Security testing boosts development speed and software quality.
Security Affairs
FEBRUARY 14, 2023
Tor Project maintainers revealed that for at least 7 months, the Tor network was hit by several different waves of ongoing DDoS attacks. During the last months Tor users have experienced Tor network performance issues lately, Tor Project maintainers explained that they were caused by different waves of ongoing DDoS attacks. Tor Project’s Executive Director Isabela Dias Fernandes explained that the methods and targets of the attacks have continuously changed over time.
Dark Reading
FEBRUARY 14, 2023
The goal: Ensure that data is always finely curated and accessible, and that security decisions get made with high-fidelity data.
Advertisement
If you’re considering migrating from DataStax Enterprise (DSE) to open source Apache Cassandra®, our comprehensive guide is tailored for architects, engineers, and IT directors. Whether you’re motivated by cost savings, avoiding vendor lock-in, or embracing the vibrant open-source community, Apache Cassandra offers robust value. Transition seamlessly to Instaclustr Managed Cassandra with our expert insights, ensuring zero downtime during migration.
Security Affairs
FEBRUARY 14, 2023
The threat actors behind a massive AdSense fraud campaign infected 10,890 WordPress sites since September 2022. In November 2022, researchers from security firm Sucuri reported to have tracked a surge in WordPress malware redirecting website visitors to fake Q&A sites via ois[.]is. The experts were tracking the campaign since September 2022, the campaign’s end goal was black hat SEO aimed at increasing the reputation of the attacker’s sites.
Dark Reading
FEBRUARY 14, 2023
Lawsuits say hospitals using Meta Pixel code violated patient privacy — sharing conditions, medications, and more with Facebook.
eSecurity Planet
FEBRUARY 14, 2023
Virtual patching uses policies, rules and security tools to block access to a vulnerability until it can be patched. Zero-day threats and legacy systems are two ways that vulnerabilities can be created for which no patch may exist for some time, if ever. In those cases, security teams can block a potential attack path until a permanent fix can be found.
Security Affairs
FEBRUARY 14, 2023
Threat actors published more than 451 unique malware-laced Python packages on the official Python Package Index (PyPI) repository. Phylum researchers spotted more than 451 unique Python packages on the official Python Package Index (PyPI) repository in an attempt to deliver clipper malware on the developer systems. According to the experts, the activity is still ongoing and is part of a malicious campaign that they discovered on November 2022.
Advertisement
Are you trying to decide which entity resolution capabilities you need? It can be confusing to determine which features are most important for your project. And sometimes key features are overlooked. Get the Entity Resolution Evaluation Checklist to make sure you’ve thought of everything to make your project a success! The list was created by Senzing’s team of leading entity resolution experts, based on their real-world experience.
WIRED Threat Level
FEBRUARY 14, 2023
No, there’s not a sudden influx of unidentified objects in the skies above the US—but the government is paying closer attention.
Dark Reading
FEBRUARY 14, 2023
The new managed detection and response platform simplifies cloud security for Kubernetes applications.
John Battelle's Searchblog
FEBRUARY 14, 2023
Maybe we like having a produce guy after all. Given the news around AI’s impact on the tech industry, search, and jobs in general, I thought it made sense to re-up a piece I wrote back in 2018, triggered at the time by the launch of Amazon Go (which, not surprisingly, did not exactly go as Amazon might have wished ). I re-read it recently and thought it held up pretty well (and I’ve been on the road for over a week, so fresh pieces will have to wait for a few more days!).
Expert insights. Personalized for you.
330 
Let's personalize your content